Overview

overview

7

Static

static

3

c439cc4195...18.exe

windows7-x64

7

c439cc4195...18.exe

windows10-2004-x64

7

$APPDATA/s...k.html

windows7-x64

3

$APPDATA/s...k.html

windows10-2004-x64

3

$APPDATA/s...k.html

windows7-x64

3

$APPDATA/s...k.html

windows10-2004-x64

3

$APPDATA/s...x.html

windows7-x64

3

$APPDATA/s...x.html

windows10-2004-x64

3

$APPDATA/s...m.html

windows7-x64

3

$APPDATA/s...m.html

windows10-2004-x64

3

$APPDATA/s...n.html

windows7-x64

3

$APPDATA/s...n.html

windows10-2004-x64

3

$APPDATA/s...m.html

windows7-x64

3

$APPDATA/s...m.html

windows10-2004-x64

3

$APPDATA/s...m.html

windows7-x64

3

$APPDATA/s...m.html

windows10-2004-x64

3

$APPDATA/s...m.html

windows7-x64

3

$APPDATA/s...m.html

windows10-2004-x64

3

$APPDATA/s...n.html

windows7-x64

3

$APPDATA/s...n.html

windows10-2004-x64

3

$APPDATA/s...m.html

windows7-x64

3

$APPDATA/s...m.html

windows10-2004-x64

3

$APPDATA/s...m.html

windows7-x64

3

$APPDATA/s...m.html

windows10-2004-x64

3

$APPDATA/s...m.html

windows7-x64

3

$APPDATA/s...m.html

windows10-2004-x64

3

$APPDATA/s...n.html

windows7-x64

3

$APPDATA/s...n.html

windows10-2004-x64

3

$APPDATA/s...n.html

windows7-x64

3

$APPDATA/s...n.html

windows10-2004-x64

3

$APPDATA/s...m.html

windows7-x64

3

$APPDATA/s...m.html

windows10-2004-x64

3

Analysis

  • max time kernel
    136s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    04-12-2024 20:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    $APPDATA/seemao/config/blank.html

  • Size

    8KB

  • MD5

    513ebdf12e2177e6542217ab03525223

  • SHA1

    1d104c7be69390da9cf2080dbcc04ba1e6992b8c

  • SHA256

    558d6027fb5afd5dfd4188b7cf74499f980331ae888a73b39d6790f83115619d

  • SHA512

    b37f9f598f12699dd19abadf6ebffa53f9561cee358fe6e77bcb797cbed60609064231627384646025b87a946456a1024feaf153a111b07d4fdbe54f281e5219

  • SSDEEP

    192:pI22Qq8LneLC4c/f6234LiBPdlduM6m+qHVRWLbgbaEKwwI8o:pIC34LiBFjJ6eHVRWLbgbafwh8o

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Modifies Internet Explorer settings 1 TTPs 36 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\$APPDATA\seemao\config\blank.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2324
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2324 CREDAT:275457 /prefetch:2
      2⤵
      • System Location Discovery: System Language Discovery
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2820

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fbb3da5fcfc5289f815a547e9fb96a43

    SHA1

    446ef76a843c20679d11481a61946c2b0c849875

    SHA256

    8854d8f0d3053b0e14bf81d06c3d16b97e2ba874f654e7467d199da1fcc66e34

    SHA512

    d67df5a36e8940d47581334f6f391286b88da3d62421dc93e7a015278e5d0c1cbc25ce2d7ab8513adfbd2a059fc33e7152e0a5c5ee1282b24457288cec279b93

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c50b6b8baa9d49c3a9cb9c6eac55bf23

    SHA1

    5bbc2bb3e2a63a204f246c2d3acaa5401f5ae8a1

    SHA256

    6c9590efaf733405a8a8899e932b5d11b3a13b4d7f5327afdf77cdeb87f63a45

    SHA512

    ab62435562facb6fa1d6d8c8f4d8edec15006c17ce5e1896da41b18da2a858be22d479f1bffc4c4b943b6280ab62cbc7c110cb71cb5e595827113e4e45183e83

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    399a0635530f711e211e38edb986c2b5

    SHA1

    46eb0755aeb37b268bd8e795eaf335d9700b9bf2

    SHA256

    7f5707561d627eda9ef12038365111707c6b59d0a4fed5bcf553f0ad16d5aaa0

    SHA512

    49130ff0e276bdc7bd23d52bf37062a38a898bed37333d7858608ec11cf56a9f8e44bd8272a84989593162c1bd509622d6054ce45ecc5086b13182094e7b02bf

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    3c0cfb4d66fa4aa347d6bb3ce4a2a700

    SHA1

    d048dbff8dadc48c2cc669f6f6dd29a19e8e6bca

    SHA256

    70f3eb7ccdea8e42d3a1792c17bd175b00c2962ed8139cbcd2a23d3caafea4ef

    SHA512

    b986737268e01e1dd9ee9fc41cd8e26a2fceedead4aac24a10e6aeab3e1b407bc8c3e24056cf93b35abbe5bf58e5c73530f65a0a480056a113bee1755b7a9a4f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    f1af0ad5297b3ddb9deebfd911ae6537

    SHA1

    f47c81cbbdaf00bd20fc3d2696ab2d053373b3f1

    SHA256

    cadb97a066afa8ea9b7f473797a3c2bf779120947789a89ade6d076f50f22119

    SHA512

    8fa508e620bd9679c75817dbf481e45673da749bd26576af63bcca0119862afd9879ccf57ad1911a5708d19dc11f1221ebf1e09b5762d43618060de4ae20b13d

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    90f6781583e4ce520e65edc070c7dd9a

    SHA1

    717b655f218c434ac4c2ccc8b8593b91c0b7c21f

    SHA256

    8c35b329cfae0957724b0486e5e96cc7a42800661e9b96ab4ab9217123d40f38

    SHA512

    d5d0c9315ab99923b7cb279b7c3503b8785ae3a482d913e7741afafe4c88911f0fb21605369929f84d71b62a51fdf953c9773b1708870c69551ce8cc30ad3ceb

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb34c24d5504de85c5634b9cca9fbb69

    SHA1

    e6f36da4f50660a690e0a4691218b013ef98263e

    SHA256

    9b9a57e461841ad85a647d74c0047a2dde72592d657e3a8d687bbc9a4e82df9a

    SHA512

    6057064eccac3003750f4dfcb142294d39db43429a625d765b459a56817a3a6f099cc35630556287810f28aa2be02f68e0ef7f78bd61670567203b2eb60c68ab

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7a569ef32edf24cf3a6aa01e446a7aa2

    SHA1

    cce2265cfbd6e6c3018493738b58824d42c0125f

    SHA256

    489e609bfe7a508df56d0e5663d36b4547fcda02800ed884e4f8a669ec37a1c3

    SHA512

    445eadc22048cb73cae1829779add1cc5a75818a0387afcaf97ae3fa5e264706b0032fb566da1840e60476fd2508f91c964741b34d3f4a4f0ce4ee79a567e701

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    8a46a71e41dde3dba313b209ae0b2759

    SHA1

    a2d3dff48a40497fdc9a1f9e934aa5bedc903da6

    SHA256

    23af8f244f84eeded2f32ce31bd52b07b5b33edbd487ff904d2e2bf27942641b

    SHA512

    eedfde2b87a741981fb0415f9450068cec55c7fffe4c0636330bf197e865793b36c6e9b2492d2cc066ccf8cc1be3ba5bd99fe80485c0730847f6a38f29fa6f0e

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    2d625e6c650032306453f30be9e48cf5

    SHA1

    3d79f915d3ec047eeafa83852efefa83df517fd8

    SHA256

    ba7322b12e6f66dee420751a1422c3418736820b13beff1b6997c36f0db867b6

    SHA512

    c4cf152c769411e19b44fe360e53027500cb6f7c949074ff4ea762d02adbdd39c53d4016b190c1d7b009eb2e47de940ca1c4ff093f8b9e2dc91c0b61d93dca6b

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d06b4a01a277d917dc5719cd52690a43

    SHA1

    3389a4bd74c384569229547183934f55fab11753

    SHA256

    74e813262170c0403c6420e4f952fc121fc1130cdc324e3a1cc3dbb91628ae09

    SHA512

    7f013552dc0b1296f8087ec0979ecc849d5f865494ea37eecfa96bc6ac1df5b14d379fca74bc42e9cd605fa234214961c71c2c3d24f54ff496d4a7a0d666d195

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d27f3e536b9455e4a528b1922082899d

    SHA1

    24d42f1ced6e896862142d09b3606dabaf68f97f

    SHA256

    2f4e760829f167f085abfd8900df9266f8ca620c52785d6eaa9130a93df1f136

    SHA512

    cf3440159646d3f65ddaa5aa626ba336f6affb684f7e3c2fdab1240cb53b5fcb0c769247b03f954010c2b43e2f527eed75d05da99f2521aba8c2305595163375

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    faf983803fdc032158489bad2ed0dd39

    SHA1

    2d568c60cc399e2d51826b9cb547397ba5b625d7

    SHA256

    eb1613d7bb32d23b6aa2a0386ecf7b25212ba59aa5c91581306de031747eefa8

    SHA512

    bb76578ef802cf19d0428b1cff7b79cec73259ca4189725a964aef2e90278daca7150c9f1e6a14e647902c48cb47bf471d8bab7c449c9563f85a0470bbdf1014

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4e19edd9ebaf7ef5ce322dfa29328681

    SHA1

    a7d154a25387f212a3378af261e3afe20dcb3fee

    SHA256

    5e2103d75c135cf57c3a949d108e5bfdee5ed98d1ad7910bd05c4fd82796b0d1

    SHA512

    ffa114ac78c4b34ab8178c010424f5891b719861a73344b833e4f2622e5b1e7486990478b7a78dbe904a063c69707690a1bab138592f8c7786ba91ac5b084a85

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    9e22e563d488c512022579daad035693

    SHA1

    c9a8130c65965d734828bb87044bb53bb7ed9a46

    SHA256

    f24628a99e6a02370a0d3d7d0479e33590ed61afa3d01ce30447aad6203a567c

    SHA512

    3a70c155f76e42f3cd9c402cbc69fb07bf2b71ea64c885af93f709b10115bb56c2c2c0f0f6fcbffbc10cc22a6e457cb69d93afcaedc6a2fad2e1a062f847ef16

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    5a611d3831d1baea71c8b5babe3b24d6

    SHA1

    c2eb4332b3def31bcf8c0859efc21a710349116c

    SHA256

    1c0d9b4f487c80d79aae40c94c524fe7cbfa09553f1d3a0c9cd698ecbaae6113

    SHA512

    240938b217d535014add9384a33818a9e127da86ae65b559fe314d8f19749ad9f5e1358fcc3a0f718c47f0d09c8ffcb9d68c691a1003738e073043f4e70f8a82

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab39B.tmp
    Filesize

    70KB

    MD5

    49aebf8cbd62d92ac215b2923fb1b9f5

    SHA1

    1723be06719828dda65ad804298d0431f6aff976

    SHA256

    b33efcb95235b98b48508e019afa4b7655e80cf071defabd8b2123fc8b29307f

    SHA512

    bf86116b015fb56709516d686e168e7c9c68365136231cc51d0b6542ae95323a71d2c7acec84aad7dcecc2e410843f6d82a0a6d51b9acfc721a9c84fdd877b5b

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar850.tmp
    Filesize

    181KB

    MD5

    4ea6026cf93ec6338144661bf1202cd1

    SHA1

    a1dec9044f750ad887935a01430bf49322fbdcb7

    SHA256

    8efbc21559ef8b1bcf526800d8070baad42474ce7198e26fa771dbb41a76b1d8

    SHA512

    6c7e0980e39aacf4c3689802353f464a08cd17753bd210ee997e5f2a455deb4f287a9ef74d84579dbde49bc96213cd2b8b247723919c412ea980aa6e6bfe218b

    Download Submit